The GDRP impacts how all organisations collect, hold and process people’s personal data. Simply put, EU residents will now have greater say over what, how, why, where, and when their personal data is used, processed, or disposed of.
This rule clarifies how the EU personal data laws apply even beyond the borders of the EU. Any organisation that works with EU residents’ personal data in any manner, irrespective of location, has obligations to protect the data.
Cherish has focused on its GDPR compliance responsibilities by evaluating the new requirements and restrictions imposed by GDPR. The company has taken action necessary to ensure that we handle all data in compliance with the applicable law.
Cherish is committed to meeting any contractual obligations for procedures, products and services and is approaching GDPR compliance on three main fronts:
1. To ensure our own compliance as a company that holds and processes people’s personal data.
2. To ensure our partners and suppliers adhere to the highest standards of compliance and GDPR regulation.
3. To ensure that our programs, software applications and services all support our customers’ GDPR compliance efforts.
GDPR Compliance Statement
Cherish has undertook a full review of all internal security and privacy policies to ensure that all personal data within, or passing through the company, will be handled in accordance with GDPR regulations.
The company will ensure consistent review and implementation of the relevant tools and practises to ensure the safeguarding of any data held or used on behalf of its employees and supply chains. Employees have been made aware of all GDPR restrictions, with the relevant training provided as necessary.
Cherish will undertake a review of all supplier and third party contracts and arrangements to ensure that all of our partners continue to apply the same high standards of data protection.